d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2a1c79af92
freebsd-dev/sys/security
History
Robert Watson 2a1c79af92 Add compartment support to Biba and MLS policies. The logic of the 
policies remains the same: subjects and objects are labeled for
integrity or sensitivity, and a dominance operator determines whether
or not subject/object accesses are permitted to limit inappropriate
information flow.  Compartments are a non-hierarchal component to
the label, so add a bitfield to the label element for each, and a
set check as part of the dominance operator.  This permits the
implementation of "need to know" elements of MLS.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-10-21 18:42:01 +00:00
..
lomac Regularize the vop_stdlock'ing protocol across all the filesystems 2002-10-14 03:20:36 +00:00
mac Add compartment support to Biba and MLS policies. The logic of the 2002-10-21 18:42:01 +00:00
mac_biba Add compartment support to Biba and MLS policies. The logic of the 2002-10-21 18:42:01 +00:00
mac_bsdextended Merge implementation of mpo_check_vnode_link() for various appropriate 2002-10-05 18:25:48 +00:00
mac_ifoff Rename mac_check_socket_receive() to mac_check_socket_deliver() so that 2002-08-15 18:51:27 +00:00
mac_mls Add compartment support to Biba and MLS policies. The logic of the 2002-10-21 18:42:01 +00:00
mac_none Sync from MAC tree: break out the single mmap entry point into 2002-10-06 02:46:26 +00:00
mac_seeotheruids Introduce support for Mandatory Access Control and extensible 2002-07-31 18:07:45 +00:00
mac_stub Sync from MAC tree: break out the single mmap entry point into 2002-10-06 02:46:26 +00:00
mac_test Sync from MAC tree: break out the single mmap entry point into 2002-10-06 02:46:26 +00:00